The following keywords configure access to the LDAP database:
Sets the default base DN for ldap operations. The base must be specified as a Distinguished Name in LDAP format.
The DN to bind as.
Read password from file. This is a safer alternative to bindpw.
Read TLS Certificate Authority from file.
Specifies the URI of LDAP server to connect to. Multiple URIs are allowed. Each URI is ‘scheme://[name[:port]]’. The scheme part is one of: ‘ldap’, meaning LDAP over TCP (default port 389), ‘ldaps’, meaning LDAP over SSL (TLS) (default port 636), or ‘ldapi’, meaning LDAP over UNIX socket. For ‘ldap’ and ‘ldaps’, name is the host name or IP address of the remote server. Optional port specifies the TCP port to use instead of the default one. For ‘ldapi’, name is the pathname of the UNIX socket and port is not used. Note, that directory separators must be URL-encoded (using ‘%2F’ instead of ‘/’).